Remote Code Execution in Panasonic FPWIN Pro Version 7.3.0.0 and Prior

Remote Code Execution in Panasonic FPWIN Pro Version 7.3.0.0 and Prior

CVE-2019-6532 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user triggering incompatible type errors because the resource does not have expected properties. This may lead to remote code execution.

Learn more about our User Device Pen Test.